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AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

1 . (original) A method of managing keys in a key distribution system for a 
communications group, the key distribution system maintaining a tree of nodes including 
at least one leaf node that has a parent node, each node of the group being associated 
with a first key, 

the method comprising: 

the system updating the first keys of a first branch of nodes in the tree by 
allocating new first keys to each of the nodes in the branch; 

the system determining an offset for generating the updated first key of each 
node in the branch from the previous node in the branch; and 

broadcasting each of said offsets so that, given the updated first key associated 
with the first node of said branch, each updated first key of said branch of nodes can be 
calculated. 

2. (original) A method as claimed in claim 1 , wherein the first key of each parent 
node in said tree of nodes is generated from the first key of each of its child nodes by 
two one-way functions and a mixing function, the mixing function including the offset as 
a parameter. 

3. (original) A method as claimed in claim 2, wherein the mixing function in an 
XOR function. 

4. (currently amended) A method as claimed in claim 2 or c l a i m 3 , wherein each 
parent key is generated using the formula f(f (child key) XOR OFFSET), wherein 
OFFSET is the offset and f represents a one-way function and wherein child_key is the 
first key of a child node of said parent node. 
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5. (currently amended) A method as claimed in any procod i ng c l aim cjajmj, 
wherein the communication group comprises at least one member that is associated 
with a leaf node of the tree of nodes. 

6. (original) A method as claimed in claim 5, wherein information transferred to, 
from or between members of the communication group is encrypted using an 
application data encryption key, the encryption key comprising a join field and a leave 
field, wherein each member of the group knows the join field of the encryption key, and 
wherein the leave field of the encryption key is derived from the first key of a root node 
of the tree. 

7. (original) A method as claimed in claim 6, wherein the join field of the 
encryption key is updated each time a member joins the group. 

8. (original) A method as claimed in claim 7, wherein the new member joins the 
group using the following method: 

the new user requests access to the group; 
the new user is granted access to the group; 

the new member is assigned a node at a new leaf node of the communication 

group; 

the new member is sent all the information required to generate the first key of 
each node on a branch of nodes from the new leaf node to the root node; and 
the join field of the application data key is updated. 

9. (original) A method as claimed in claim 8 wherein the method further 
comprises: 

the generation of a new node as the parent of both the new leaf node and a 
pre-existing node. 
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10. (currently amended) A method as claimed in any ono of cla i ms 7 to 9 claim 
7, wherein the updated join field is generated from the previous join field using a one- 
way function. 

1 1 . (currently amended) A method as claimed in any ono of cla i ms 6 to 10 claim 
7, wherein a key update request is generated each time a member leaves the group, 
wherein the first keys of each node of the branch of nodes including both the node 
associated with the member that is leaving the group and the root node are the keys 
that are updated. 

12. (original) A method as claimed in claim 1 1 , wherein a member leaves the 
group using the following method: 

an instruction to remove a member from the group is generated; 

the parent node of the node associated with the leaving member is deleted; 

the sibling node of the node associated with the leaving member is promoted to 
the position occupied by the deleted node; 

the first key of each node on the branch of nodes from the promoted node to the 
root node is updated; 

offset messages for generating the new first keys are broadcast to the group; 

remaining members of the communications group calculate the updated first key 
nodes of the tree. 

13. (original) A method as claimed in claim 12, wherein the instruction to 
remove a member from the group is generated by the member that is leaving the group. 

14. (original) A method as claimed in claim 12, wherein the instruction to 
remove a member from the group is generated by a key distribution server. 

15. (currently amended) A method as claimed in any procodinq claim claim 1 , 
wherein the nodes are arranged in a hierarchical tree. 
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16. (original) A method as claimed in claim 15, wherein the nodes are arranged 
in a binary tree. 

17. (currently amended) A method as claimed in any procod i ng claim claim 1 
further including: 

retransmitting messages enabling users to update keys in case the users have 
not received those messages. 

18. (original) A method as claimed in claim 17 wherein the retransmitted 
messages are attached to application data packets. 

19. (currently amended) A method as claimed in claim 17 or c l aim 18 wherein 
the retransmitted messages contain a sequence number indicative of the position in the 
sequence of key updates. 

20. (original) A method as claimed in claim 19 wherein the sequence number is 

cyclic. 

21 . (currently amended) A key distribution system which, in operation, performs 
the method of any procod i ng c l a i m claim 1 . 

22. (original) A key distribution system for a communications group, the key 
distribution system maintaining a tree of nodes including at least one leaf node that has 
a parent node, each node being associated with a first key, wherein: 

the first key of each parent node in the tree is derived from the first key of each of 
its child node by two one-way functions and a mixing function, the mixing function 
including an offset value as a parameter. 

23. (original) A key distribution system as claimed in claim 22, wherein the 
mixing function in an XOR function. 

24. (currently amended) A key distribution system as claimed in claim 22 of 
cla i m 23 , wherein each parent key is generated using the formula f(f (child_key) XOR 
OFFSET), wherein OFFSET is the offset and f represents a one-way function and 
wherein child_key is the first key of a child node of said parent node. 
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25. (currently amended) A key distribution system as claimed in any ono of 
claimc 22 to 24 claim 22 , wherein: 

the first keys of a first chain of nodes along a branch of the tree are updated by 
allocating new first keys to each of those nodes in response to a request to update the 
first keys of that chain of nodes; 

an offset for generating the updated first key of each member of the chain from 
the previous member of the chain is determined; and 

each of said offsets is broadcast so that, given the updated first key associated 
with the first node of said chain of nodes, each updated first key on said chain of nodes 
can be calculated. 

26. (currently amended) A key distribution system as claimed in any ono of 
claimc 22 to 25 claim 22 , wherein the communication group comprises at least one 
member that is associated with a leaf node. 

27. (currently amended) A key distribution system as claimed in any procoding 
daim claim 1 , wherein information transmitted to, from or between members of the 
communication group is encrypted using an application data encryption key, the 
encryption key comprising a join field and a leave field, wherein each member of the 
group knows the join field of the encryption key, and wherein the leave field of the 
encryption key is derived from the first key of a root node of the tree. 

28. (original) A key distribution system as claimed in claim 27, wherein the join 
field of the encryption key is updated each time a member joins the group. 

29. (original) A key distribution system as claimed in claim 28, wherein the new 
member joins the group using the following method: 

the new user requests access to the group; 
the new user is granted access to the group; 

the new member is assigned a node at a new leaf node of the communication 

group; 
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the new member is sen, a,, .he information required .0 generate .he first Key o, 
each node on a branch o, nodes from the new leaf node ,0 the root node; and 
,he join field of the application data encryption key is updated. 

30 (original, A key distribution system as claimed in claim 29 wherein the said 
new membirilmethodfudhercomprisesthegenerationofanew node astheparen, 

of both the new leaf node and a pre-existing node. 

31 (currently amended) A key distribution system as claimed in any^f 
^S^.w-rein,heupda,edioin,ie,d,sgenera,ed,rom,heprev,ous 

join field using a one-way function. 

32 (currently amended) A key distribution system as claimed in an^eee-ef 

daimS wherein a key update request is generated each .« a 
*^^p, wherein fhe firs, keys 0. each node of .he branch of nodes 
:i~heno 9 deassoci,edw,h,e member , a. is leaving the group and , he 

root node are the keys that are updated. 

33. (original, A key distribution system as claimed in claim 32, wherein a 
member leaves the group using the following protocol'. 

an instruction to remove a member from the group is generated; 
the parent node of the node associated with the leaving member is deleted; 
,„e sibling node of the node associated with .he leaving member is promoted .0 
the position occupied by the deleted node; 

,ne firs, key 0. each node on the branch 0, nodes from the promo,ed node ,0 .he 
root node is updated; 

offse, messages for generating the new firs, keys are broadcast ,0 the group; 
remaining members 0, .he communications group calculate fhe updated firs, keys 
of nodes of the tree. 
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34. (original) A key distribution system as claimed in claim 33, wherein the 
instruction to remove a member from the group is generated by the member that is 
leaving the group. 

35. (original) A key distribution system as claimed in claim 33, except, wherein 
the instruction to remove a member from the group is generated by the key distribution 
server. 

36. (currently amended) A key distribution system as claimed in any ono of 
cla i ms 22 to 35 claim 22 , wherein the nodes are arranged in a hierarchical tree. 

37. (original) A key distribution system as claimed in claim 36, wherein the 
nodes are arranged in a binary tree. 

38. (original) A key distribution system for a communications group, the key 
distribution system comprising an encryption key and maintaining a tree of nodes 
including a root node that has at least one child node, and at least one leaf node that 
has a parent node, the communication group comprising at least one member, wherein 
the encryption key comprises a join field and a leave field, and wherein: 

each member of the group knows the join field of the encryption key; 

each node of the key distribution system is associated with a leave key; 

the leave field of the encryption key is derived from the leave key of the root 

node. 

39. (original) A key distribution system as claimed in claim 38, wherein said at 
least one member is associated with a leaf node of the tree of nodes. 

40. (currently amended) An encryption key as claimed in claim 38 or cla i m 39 , 
wherein the join field of the encryption key is updated each time a member joins the 
group. 

41 . (original) An encryption key as claimed in claim 40, wherein the updated join 
field is generated from the previous join field using a one-way function. 
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42 (currency amended) An encryption key as claimed in a^y-one*^ 
cairn 39, wherein a Key update request is generated each time a mem er leaves 

Tgro^erein the leave keys o. each node o, the branch o. nodes ,nc,ud,ng both 
Te node associated with the member that is leaving the group and the root node are 
updated. 

43 (currently amended) An encryption key as claimed in a^y^Waim^ 
W Cairn 39, wherein the firs, key of parent nodes in the tree is generated from fh 
tsTke^ch o, its chiid nodes by two one-way .unctions and a m,x,ng funCon, the 
mixing (unction including an offset as a parameter. 

44. (original) An encryption key as claimed in claim 43, wherein the mixing 
function in an XOR function. 

45 (current amended) An encryption key as claimed in c.aim 43 e^4 
wherein eah parent Key is generated using the formu.a f (f (chi.d_.ey) XOR OFFSET), 

key is the first key of a child node of said parent node. 



-11 - 



877898 



